Critical Infrastructure

 

Education Level: Basic

6419 - The Insecurity of Industrial Things

Wednesday, September 27
2:15 PM - 3:15 PM

When hearing the buzzword “Internet of Things,” we typically think of the consumer world: smart toasters and connected fridges. However, there is a staggering number of networked embedded devices that perform life- and mission-critical tasks that our daily lives depend on. We haven’t thought of these new types of devices as miniature computers that need the same care in deployment, management and protection as our servers, computers and mobile phones. The mainstream security industry has been asleep at the wheel and largely overlooked one of the world’s most vital technology sectors: embedded, automation and control systems. This is a huge blind spot. Embedded devices, such as ICS and SCADA systems, are the low-hanging fruit for potential attackers: They are abundant, easy to compromise, connected to high-value networks and detection often only happens after the fact.


In this talk we will share real-world vulnerabilities in industrial control environments and discuss why these insecure design patterns exist, including business drivers and technology factors. We will share stories and anecdotes based on 10 years of research, training and consulting. Attendees will get an inside view into how attackers operate and walk away knowing what to look for when future-proofing our industrial control systems.

Learning Objectives:

Stephen Ridley

Founder and CEO/CTO
Senrio

Stephen Ridley is founder and CEO/CTO of Senrio. He has more than 10 years of experience in software development, software security and reverse engineering. His original research on embedded device vulnerabilities has been featured on NPR, SecurityWeek, Wired and numerous other publications. Prior to his current work at Senrio, Stephen was principal researcher at Xipiter and served as CISO of a financial services firm. Prior to that he held various information security researcher/consultant roles (Matasano Security, et al) and was the senior security architect at McAfee. Earlier in his career, Stephen was a founding member of the Security and Mission Assurance (SMA) group at a major U.S. defense contractor, where he did vulnerability research and reverse engineering in support of the U.S. Defense and Intelligence community.

Presentation(s):

Send Email for Stephen Ridley


Assets

6419 - The Insecurity of Industrial Things



Attendees who have favorited this

Please enter your access key

The asset you are trying to access is locked. Please enter your access key to unlock.

Send Email for The Insecurity of Industrial Things